14.142.143.138

Basic Info

City: Indore

Region: Madhya Pradesh

Country: India

Internet Service Provider: Tata Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH brutforce	2020-08-27 05:02:44
attackspam	2020-08-23T19:12:20.702437abusebot-6.cloudsearch.cf sshd[10597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root 2020-08-23T19:12:22.301464abusebot-6.cloudsearch.cf sshd[10597]: Failed password for root from 14.142.143.138 port 33251 ssh2 2020-08-23T19:14:53.637612abusebot-6.cloudsearch.cf sshd[10654]: Invalid user lisa from 14.142.143.138 port 29150 2020-08-23T19:14:53.644379abusebot-6.cloudsearch.cf sshd[10654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 2020-08-23T19:14:53.637612abusebot-6.cloudsearch.cf sshd[10654]: Invalid user lisa from 14.142.143.138 port 29150 2020-08-23T19:14:55.248137abusebot-6.cloudsearch.cf sshd[10654]: Failed password for invalid user lisa from 14.142.143.138 port 29150 ssh2 2020-08-23T19:17:18.265592abusebot-6.cloudsearch.cf sshd[10708]: Invalid user praful from 14.142.143.138 port 25012 ...	2020-08-24 04:22:04
attackspambots	Aug 19 09:37:14 haigwepa sshd[14752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Aug 19 09:37:16 haigwepa sshd[14752]: Failed password for invalid user ftptest from 14.142.143.138 port 20220 ssh2 ...	2020-08-19 16:06:17
attack	Invalid user kruger from 14.142.143.138 port 51452	2020-08-17 14:34:35
attack	2020-08-16T00:51:37.824646afi-git.jinr.ru sshd[25758]: Failed password for root from 14.142.143.138 port 14596 ssh2 2020-08-16T00:54:00.148574afi-git.jinr.ru sshd[26297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root 2020-08-16T00:54:02.332786afi-git.jinr.ru sshd[26297]: Failed password for root from 14.142.143.138 port 38766 ssh2 2020-08-16T00:56:26.731907afi-git.jinr.ru sshd[27157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root 2020-08-16T00:56:28.624786afi-git.jinr.ru sshd[27157]: Failed password for root from 14.142.143.138 port 28674 ssh2 ...	2020-08-16 06:45:12
attack	" "	2020-08-15 04:31:07
attackbotsspam	Aug 11 05:49:16 server sshd[31682]: Failed password for root from 14.142.143.138 port 28019 ssh2 Aug 11 05:52:04 server sshd[32612]: Failed password for root from 14.142.143.138 port 29206 ssh2 Aug 11 05:54:54 server sshd[33646]: Failed password for root from 14.142.143.138 port 30933 ssh2	2020-08-11 14:26:47
attackbots	Aug 7 18:36:24 gw1 sshd[26260]: Failed password for root from 14.142.143.138 port 26210 ssh2 ...	2020-08-07 22:09:39
attack	Aug 6 10:49:03 ns41 sshd[9683]: Failed password for root from 14.142.143.138 port 56130 ssh2 Aug 6 10:49:03 ns41 sshd[9683]: Failed password for root from 14.142.143.138 port 56130 ssh2	2020-08-06 16:49:16
attackspambots	Aug 4 01:36:39 dev0-dcde-rnet sshd[1031]: Failed password for root from 14.142.143.138 port 11406 ssh2 Aug 4 01:47:39 dev0-dcde-rnet sshd[1188]: Failed password for root from 14.142.143.138 port 22839 ssh2	2020-08-04 08:25:55
attack	Invalid user manos from 14.142.143.138 port 46088	2020-07-28 13:08:27
attackspam	Jul 26 16:40:09 NPSTNNYC01T sshd[9583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 26 16:40:11 NPSTNNYC01T sshd[9583]: Failed password for invalid user weldon from 14.142.143.138 port 51490 ssh2 Jul 26 16:43:00 NPSTNNYC01T sshd[9881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 ...	2020-07-27 05:04:15
attackspambots	Jul 26 21:24:33 gw1 sshd[4479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 26 21:24:35 gw1 sshd[4479]: Failed password for invalid user admin from 14.142.143.138 port 51488 ssh2 ...	2020-07-27 00:27:00
attackbots	Jul 26 10:26:34 marvibiene sshd[8313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 26 10:26:36 marvibiene sshd[8313]: Failed password for invalid user best from 14.142.143.138 port 51875 ssh2 Jul 26 10:29:22 marvibiene sshd[8433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138	2020-07-26 16:49:41
attack	Jul 23 15:41:54 rancher-0 sshd[534297]: Invalid user admin from 14.142.143.138 port 32104 ...	2020-07-23 22:07:02
attack	Jul 23 15:56:35 gw1 sshd[3440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 23 15:56:37 gw1 sshd[3440]: Failed password for invalid user dan from 14.142.143.138 port 25861 ssh2 ...	2020-07-23 18:59:47
attackbotsspam	Jul 22 21:46:03 vps639187 sshd\[17015\]: Invalid user ronan from 14.142.143.138 port 12611 Jul 22 21:46:03 vps639187 sshd\[17015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 22 21:46:05 vps639187 sshd\[17015\]: Failed password for invalid user ronan from 14.142.143.138 port 12611 ssh2 ...	2020-07-23 04:14:48
attack	Fail2Ban Ban Triggered	2020-07-20 07:33:22
attackbotsspam	$f2bV_matches	2020-07-17 21:38:02
attackbotsspam	2020-07-12T19:21:00.619881afi-git.jinr.ru sshd[20579]: Invalid user zq from 14.142.143.138 port 29753 2020-07-12T19:21:00.623138afi-git.jinr.ru sshd[20579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 2020-07-12T19:21:00.619881afi-git.jinr.ru sshd[20579]: Invalid user zq from 14.142.143.138 port 29753 2020-07-12T19:21:03.254724afi-git.jinr.ru sshd[20579]: Failed password for invalid user zq from 14.142.143.138 port 29753 ssh2 2020-07-12T19:23:05.718037afi-git.jinr.ru sshd[21559]: Invalid user ubuntu from 14.142.143.138 port 22772 ...	2020-07-13 00:27:40
attackbotsspam	Invalid user filippo from 14.142.143.138 port 21330	2020-07-11 06:16:24
attack	(sshd) Failed SSH login from 14.142.143.138 (IN/India/14.142.143.138.static-Mumbai.vsnl.net.in): 5 in the last 3600 secs	2020-07-09 21:11:57
attackspambots	Jul 7 14:03:05 ns381471 sshd[17161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jul 7 14:03:07 ns381471 sshd[17161]: Failed password for invalid user iphone from 14.142.143.138 port 16924 ssh2	2020-07-07 20:15:45
attackbots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-04 11:28:27
attackspam	Jun 22 16:03:22 scw-tender-jepsen sshd[12703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jun 22 16:03:24 scw-tender-jepsen sshd[12703]: Failed password for invalid user gis from 14.142.143.138 port 55038 ssh2	2020-06-23 00:57:29
attackspambots	"Unauthorized connection attempt on SSHD detected"	2020-06-22 01:12:52
attackbotsspam	Jun 19 19:42:35 ns3164893 sshd[19954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jun 19 19:42:37 ns3164893 sshd[19954]: Failed password for invalid user oracle from 14.142.143.138 port 33715 ssh2 ...	2020-06-20 01:47:42
attackspam	Jun 17 15:12:31 srv-ubuntu-dev3 sshd[76889]: Invalid user arthur from 14.142.143.138 Jun 17 15:12:31 srv-ubuntu-dev3 sshd[76889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jun 17 15:12:31 srv-ubuntu-dev3 sshd[76889]: Invalid user arthur from 14.142.143.138 Jun 17 15:12:33 srv-ubuntu-dev3 sshd[76889]: Failed password for invalid user arthur from 14.142.143.138 port 16644 ssh2 Jun 17 15:14:41 srv-ubuntu-dev3 sshd[77201]: Invalid user kds from 14.142.143.138 Jun 17 15:14:41 srv-ubuntu-dev3 sshd[77201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jun 17 15:14:41 srv-ubuntu-dev3 sshd[77201]: Invalid user kds from 14.142.143.138 Jun 17 15:14:43 srv-ubuntu-dev3 sshd[77201]: Failed password for invalid user kds from 14.142.143.138 port 19974 ssh2 Jun 17 15:16:58 srv-ubuntu-dev3 sshd[77605]: Invalid user yuan from 14.142.143.138 ...	2020-06-17 21:18:01
attackbotsspam	Jun 13 12:32:54 firewall sshd[10570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 Jun 13 12:32:54 firewall sshd[10570]: Invalid user um from 14.142.143.138 Jun 13 12:32:56 firewall sshd[10570]: Failed password for invalid user um from 14.142.143.138 port 22464 ssh2 ...	2020-06-13 23:41:17
attackspambots	2020-06-13T05:30:50.445678shield sshd\[7076\]: Invalid user yyarushin from 14.142.143.138 port 11685 2020-06-13T05:30:50.450074shield sshd\[7076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 2020-06-13T05:30:52.109416shield sshd\[7076\]: Failed password for invalid user yyarushin from 14.142.143.138 port 11685 ssh2 2020-06-13T05:33:15.262725shield sshd\[8121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root 2020-06-13T05:33:17.162862shield sshd\[8121\]: Failed password for root from 14.142.143.138 port 43129 ssh2	2020-06-13 13:39:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.142.143.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.142.143.138.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052001 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 21 07:25:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

138.143.142.14.in-addr.arpa domain name pointer 14.142.143.138.static-Mumbai.vsnl.net.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.143.142.14.in-addr.arpa	name = 14.142.143.138.static-Mumbai.vsnl.net.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.185.231.246	attackspam	Apr 14 20:21:36 web1 sshd\[16286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.185.231.246 user=root Apr 14 20:21:38 web1 sshd\[16286\]: Failed password for root from 222.185.231.246 port 48884 ssh2 Apr 14 20:25:02 web1 sshd\[16648\]: Invalid user sheller from 222.185.231.246 Apr 14 20:25:02 web1 sshd\[16648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.185.231.246 Apr 14 20:25:04 web1 sshd\[16648\]: Failed password for invalid user sheller from 222.185.231.246 port 44420 ssh2	2020-04-15 14:54:22
222.186.173.215	attackspambots	Apr 15 09:47:46 ift sshd\[52208\]: Failed password for root from 222.186.173.215 port 19322 ssh2Apr 15 09:47:50 ift sshd\[52208\]: Failed password for root from 222.186.173.215 port 19322 ssh2Apr 15 09:47:52 ift sshd\[52208\]: Failed password for root from 222.186.173.215 port 19322 ssh2Apr 15 09:47:56 ift sshd\[52208\]: Failed password for root from 222.186.173.215 port 19322 ssh2Apr 15 09:47:59 ift sshd\[52208\]: Failed password for root from 222.186.173.215 port 19322 ssh2 ...	2020-04-15 14:54:09
103.146.202.93	attackspambots	Continuous email spam from 103.146.202.93	2020-04-15 14:59:06
92.118.37.99	attackspambots	Apr 15 08:16:32 debian-2gb-nbg1-2 kernel: \[9190378.476938\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.99 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=7502 PROTO=TCP SPT=57847 DPT=61820 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-15 14:32:57
115.236.8.152	attack	Apr 15 07:01:01 santamaria sshd\[15996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.8.152 user=root Apr 15 07:01:03 santamaria sshd\[15996\]: Failed password for root from 115.236.8.152 port 37374 ssh2 Apr 15 07:05:37 santamaria sshd\[16051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.8.152 user=root ...	2020-04-15 14:55:36
79.101.45.94	attackspam	postfix	2020-04-15 15:03:44
66.42.114.72	attackspam	15-Apr-2020 06:43:36.381 client @0x7f649c1457e0 66.42.114.72#60348 (yahoo.qpon): view external: query (cache) 'yahoo.qpon/A/IN' denied 15-Apr-2020 06:43:36.381 client @0x7f64a40c72f0 66.42.114.72#23513 (yahoo.forex): view external: query (cache) 'yahoo.forex/A/IN' denied 15-Apr-2020 06:43:36.381 client @0x7f649c1219e0 66.42.114.72#58887 (yahoo.site): view external: query (cache) 'yahoo.site/A/IN' denied	2020-04-15 15:02:51
159.89.167.59	attack	Apr 15 07:04:27 pornomens sshd\[19762\]: Invalid user mcUser from 159.89.167.59 port 48142 Apr 15 07:04:27 pornomens sshd\[19762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.167.59 Apr 15 07:04:29 pornomens sshd\[19762\]: Failed password for invalid user mcUser from 159.89.167.59 port 48142 ssh2 ...	2020-04-15 15:04:08
24.37.113.22	attack	24.37.113.22 - - [15/Apr/2020:08:48:08 +0200] "GET /wp-login.php HTTP/1.1" 200 6582 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 24.37.113.22 - - [15/Apr/2020:08:48:10 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 24.37.113.22 - - [15/Apr/2020:08:48:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-15 14:50:44
68.187.222.170	attackbotsspam	Apr 15 05:59:45 cdc sshd[23710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.187.222.170 Apr 15 05:59:47 cdc sshd[23710]: Failed password for invalid user noc from 68.187.222.170 port 53168 ssh2	2020-04-15 14:25:52
59.127.195.93	attackbots	SSH Authentication Attempts Exceeded	2020-04-15 14:56:59
105.159.253.46	attackbots	Apr 15 05:56:27 vps647732 sshd[31789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.159.253.46 Apr 15 05:56:28 vps647732 sshd[31789]: Failed password for invalid user default from 105.159.253.46 port 6239 ssh2 ...	2020-04-15 14:36:59
112.85.42.178	attackbots	Apr 15 08:36:56 * sshd[22207]: Failed password for root from 112.85.42.178 port 59879 ssh2 Apr 15 08:37:06 * sshd[22207]: Failed password for root from 112.85.42.178 port 59879 ssh2	2020-04-15 14:40:33
218.92.0.199	attack	Apr 15 08:00:27 vmanager6029 sshd\[29938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.199 user=root Apr 15 08:00:30 vmanager6029 sshd\[29936\]: error: PAM: Authentication failure for root from 218.92.0.199 Apr 15 08:00:30 vmanager6029 sshd\[29939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.199 user=root	2020-04-15 14:38:34
202.1.169.40	attack	Lines containing failures of 202.1.169.40 Apr 13 22:44:31 shared01 sshd[29662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.1.169.40 user=r.r Apr 13 22:44:34 shared01 sshd[29662]: Failed password for r.r from 202.1.169.40 port 53708 ssh2 Apr 13 22:44:34 shared01 sshd[29662]: Received disconnect from 202.1.169.40 port 53708:11: Bye Bye [preauth] Apr 13 22:44:34 shared01 sshd[29662]: Disconnected from authenticating user r.r 202.1.169.40 port 53708 [preauth] Apr 13 22:48:07 shared01 sshd[30561]: Invalid user webmaster from 202.1.169.40 port 49006 Apr 13 22:48:07 shared01 sshd[30561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.1.169.40 Apr 13 22:48:09 shared01 sshd[30561]: Failed password for invalid user webmaster from 202.1.169.40 port 49006 ssh2 Apr 13 22:48:09 shared01 sshd[30561]: Received disconnect from 202.1.169.40 port 49006:11: Bye Bye [preauth] Apr 13 22:48:09 shared........ ------------------------------	2020-04-15 14:37:33

Recently Reported IPs

12.228.139.250	172.255.224.251	198.186.163.58	121.86.168.92
14.39.171.113	69.69.144.78	207.161.140.182	196.239.89.176
219.139.25.248	197.34.199.156	83.142.193.99	220.15.194.31
45.91.101.18	75.14.180.226	213.214.154.234	166.196.235.60
139.20.48.26	145.80.228.99	191.189.174.79	195.194.222.126